Jun 17 2005 4:28PM HP LASERJET 3330 



DOCKET NO.: MSFT-026 1/1 584 17.02 PARENT 
Application No.: 09/837,904 
Office Action Dated: March 23, 2005 

This listing of claims will replace all prior versions, and listings, of claims in the application. 
Listing of Claims: 

1. (Currently Amended) A method of protecting data comprising the 

acts of: 

creating a first process associated with a first address spac e, saift first 
process comprising an executing trusted application : 

creating a second process associated with a second address space; said 



first address space being inaccessible to said second process , said second process created by 



and controlled by s aid first process, said second process comprising an executing untiusted 
application : 

running, in said first process, a first software object which stores fee 
data in said first address space; 

running, in said second process, a second software object A^hich 
accesses said second address space; and 

directing, by said first software process, an action performable b^ said 
second software process. 

2. (Original) The method of claim 1, wherein the data comprises 
encrypted content, and wherein said act of running said first software object comprises ihb act 
of: 



starting in said first process an application which renders 

encrypted content. 



3. (Original) The method of claim 2, wherein said encrypted content 

comprises text. 

4. (Currently Amended) The method of claim 2, wherein said encrypted 
content comprises video., 
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5. (Original) The method of claim 2, wherein said encrypted content 
comprises audio. 

6. (Original) The method of claim 1, wherein the data comprises a 
cryptographic key, and wherein said act of running said first software object comprises the 
act of: 

starting in said first process an application which uses said 

cryptographic key. 

7. (Original) The method of claim 1, wherein said act of running a 
second software object comprises the acts of: 

starting, in said second process, a hosting application; 
hosting said second software object by said hosting application. 

8. (Currently Amended) The method of claim 7, wherein said a]ct of 
starting asaid hosting application comprises starting a component object model server. 

9. (Original) The method of claim 1 , wherein said second software o bject 
comprises a web browser which imports, from a remote computing device, code Which 
accesses said second address space. 

10. (Currently Amended) The method of claim 1, wherein said method is 
performed in a computing device having a display associated therewith, said method fixfther 
comprising the acts of: 

rendering thean output of said first software object in a first window 
having a first region on said display; and 

rendering thean output of said second software object in a secjond 
window different from said first window, said second window having a second region on said 
display. 
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1 1 . (Original) The method of claim 1 0, wherein said second region at least 
partly coincides with said first region. 

12. (Original) The method of claim 1 1, wherein said second windjow is 
wholly enclosed within said first window. 

13. (Original) The method of claim 1, wherein said directing act 
comprises calling a method on an interface exposed by said second process. 

14. (Original) The method of claim 13, wherein said second sofiware 
object comprises a web browser, and wherein said method instructs said web browJer to 
retrieve a web page from a remote location. 

15. (Original) A computer-readable medium having computer-executable 
instructions to perform the method of claim 1 . 

16. (Currently Amended) A system for integrating a secure application 
with an open application on a computing device including a processor, said computing device 
further including an operating system which provides a plurality of processes, each process 
having an address space associated therewith, said system comprising: 

a first trusted_application executable on said processor in a first of said 
plurality of processes having a first address space, wherein said first trusted_application 
accesses protected data in said first address space, and wherein said first trusted application 
provides a service by using a pre-determined software object; 

a second untrusted application executable on said processor in a second 
of said plurality of processes having a second address spac e, said second process created land 



controlled by said first process, wherein said second untrusted application hosts said pre- 
determined software object, and wherein said second untrusted application exposes a callable 
interface to said first trusted_appUcation, said first address space being inaccessible to laid 
second process. B^#wb» 
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17. (Original) The system of claim 16, wherein said first application 
directs the actions of said pre-determined software object by communicating instructions to 
said second application through said callable interface. 

18. (Original) The system of claim 16, wherein said pre-detennined 
software object comprises a web browser which imports, from a remote computing device, 
code which executes on said processor and which accesses data in an address space 
associated with a process in which said pre-determined software object executes. 

19. (Original) The system of claim 16, wherein said first application 
protects said protected data from observation or modification. 

20. (Original) The system of claim 16, wherein said computing dev; cc is 
coupled to a display, wherein said first application creates a first window in which said first 
application renders its output, said first window defining a first region on said display, and 
wherein said second application creates a second window in which said pre-determined 
software object renders its output, said second window being different from said 
window, said second window defining a second region on said display. 



ifirst 



21. (Original) The system of claim 20, wherein said second rdgion 
coincides at least in part with said first region. 

22. (Original) The system of claim 21, wherein said second windo|w is 
wholly enclosed within said first window. 

23. (Original) The system of claim 20, wherein said second winjdow 
comprises a child of said first window. 

24. (Original) The system of claim 16, wherein said first application 
instantiates one or more of: (a) said second application; or (b) the hosting of said pre- 
determined software object. ^ CO?* \ 
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25. (Original) A method of using a first software object and a second 
software object on a computing device which includes a display, the method comprising the 
acts of: 

running the first software object in a first process, said first process 
being associated with a first address space; 

running the second software object in a second process, said/ first 
address space being inaccessible to said second process; 

creating a first window in which said first software object rehders 
output, said first window being defined by a first region on the display; and 

creating a second window in which said second software object renders 
output, said second window being defined by a second region on the display which coincides 
at least partly with said first region. 

26. (Original) The method of claim 25, wherein said second winddw is 
wholly enclosed within said first window. 

27. (Original) The method of claim 25, wherein said act of running the 
second software object comprises: 

starting a hosting application; and 

hosting said second software object within said hosting application. 

28. (Original) The method of claim 27, wherein said hosting application 
comprises a component object model server, and wherein said method further comprise^ the 
act of: 

said hosting application exposing to said first process a method 
callable on said component object model server. 

29. (Original) The method of claim 25, wherein said first software otject 
comprises instructions which store one or more of (a) content, or (b) a cryptographic key, in 
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said first address space, and wherein said act of running the second software ^bject 
comprises: 

running a program which imports executable instructions fifom a 
remote computer and which executes said executable instructions in said second address 
space. 

30. (Original) The method of claim 25, wherein said execrable 
instructions comprise a web browser. 

3 1 . (Currently Amended) A computer-readable medium having corriputer 
executable instructions to perform the method of claim 25. 
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